<?php

namespace App\Service;

/**
 * 签名助手 2017/11/19
 *
 * Class SignatureHelper
 */
class AliyunSMS
{

    /**
     * 生成签名并发起请求
     *
     * @param $accessKeyId string AccessKeyId (https://ak-console.aliyun.com/)
     * @param $accessKeySecret string AccessKeySecret
     * @param $domain string API接口所在域名
     * @param $params array API具体参数
     * @param $security boolean 使用https
     * @param $method boolean 使用GET或POST方法请求，VPC仅支持POST
     * @return bool|\stdClass 返回API接口调用结果，当发生错误时返回false
     */
    public function request($accessKeyId, $accessKeySecret, $domain, $params, $security = false, $method = 'POST')
    {
        // 默认参数
        $default   = [
            "SignatureMethod"  => "HMAC-SHA1",
            "SignatureNonce"   => uniqid(mt_rand(0, 0xffff), true),
            "SignatureVersion" => "1.0",
            "AccessKeyId"      => $accessKeyId,
            "Timestamp"        => gmdate("Y-m-d\TH:i:s\Z"),
            "Format"           => "JSON",
        ];
        $apiParams = array_merge($default, $params);
        ksort($apiParams);

        // 组合请求参数
        $sortedQueryStringTmp = "";
        foreach($apiParams as $key => $value){
            $sortedQueryStringTmp .= "&".$this->encode($key)."=".$this->encode($value);
        }

        // 组合签名参数
        $stringToSign = "${method}&%2F&".$this->encode(substr($sortedQueryStringTmp, 1));
        $signString   = base64_encode(hash_hmac("sha1", $stringToSign, $accessKeySecret."&", true));
        $signature    = $this->encode($signString);
        $url = ($security ? 'https' : 'http')."://{$domain}/";

        // 执行请求
        try{
            $content = $this->fetchContent($url, $method, "Signature={$signature}{$sortedQueryStringTmp}");
            $result  = json_decode($content, true);
        } catch(\Exception $e){
            return false;
        }

        return $result;
    }

    // url处理
    private function encode($str)
    {
        $res = urlencode($str);
        $res = preg_replace("/\+/", "%20", $res);
        $res = preg_replace("/\*/", "%2A", $res);
        $res = preg_replace("/%7E/", "~", $res);

        return $res;
    }

    // 执行请求
    private function fetchContent($url, $method, $body)
    {
        $ch = curl_init();

        if($method == 'POST'){
            curl_setopt($ch, CURLOPT_POST, 1);//post提交方式
            curl_setopt($ch, CURLOPT_POSTFIELDS, $body);
        } else{
            $url .= '?'.$body;
        }

        curl_setopt($ch, CURLOPT_URL, $url);
        curl_setopt($ch, CURLOPT_TIMEOUT, 5);
        curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
        curl_setopt($ch, CURLOPT_HTTPHEADER, ["x-sdk-client" => "php/2.0.0",]);

        if(substr($url, 0, 5) == 'https'){
            curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false);
            curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, false);
        }

        $rtn = curl_exec($ch);
        if($rtn === false){
            // 大多由设置等原因引起，一般无法保障后续逻辑正常执行，
            // 所以这里触发的是E_USER_ERROR，会终止脚本执行，无法被try...catch捕获，需要用户排查环境、网络等故障
            trigger_error("[CURL_".curl_errno($ch)."]: ".curl_error($ch), E_USER_ERROR);
        }
        curl_close($ch);

        return $rtn;
    }
}
